Backdoor Found in Linksys and Netgear

Security researchers found a new backdoor in Linksys WAG200G. The Firmware include a service for remote connection at port 32764 , this allows remote user to get the router configuration settings , including user name , admin password, password for WiFi , etc. the tool been used to reverse the firmware is Binwalk and IDA Pro.

The list of devices with backdoor is increasing and this make users at risk, routers are transmitting all information and traffic and such access may lead to compromising users information. on Linksys and Netgear the list include:Confirmed the existence of backdoor

Linksys WAG200G

Netgear DM111Pv2

Linksys WAG320N

Linksys WAG54G2

Possible Backdoor on the firmware:

Netgear DG934

Netgear WPNT834

Netgear WG602, WGR614

Linksys WAG160N, WRVS4400N

all SerComm manufactured devices

Backdoor is not working in:

Netgear WNDR3700

Netgear CG3100

Netgear WGR614v9

Linksys WRT54GS v1.52.8 build 001

Linksys WRT54GL(v1.1) Firmware v4.30.16

Netgear WGR614v3

Netgear WNDR4500

This is not the first time to find that routers firmware include backdoor, A number of D-Link routers reportedly had an issue that makes them susceptible to unauthorized backdoor access in the past. This may reduce the trust in using these routers.